Andrea Noble reports: Information technology shortcomings within the Secret Service mean the potential still exists for employees to improperly access the agency’s restricted database, as agents did last year when they leaked unflattering information about House Oversight Chairman Jason Chaffetz, according to a new inspector general’s report. The Department of Homeland Security Inspector General has found that even after last…
Category: Commentaries and Analyses
6th Circuit denies en banc on data breach standing issue. Prelude to SCOTUS?
Alison Frankel reports: … The 6th Circuit denied a petition by Nationwide Insurance to rehear a three-judge panel’s Sept. 2016 decision to allow a negligence class action stemming from a 2012 data breach to proceed. Nationwide’s lawyers at Morgan Lewis & Bockius argued in the en banc petition (as the insurer argued in federal district court in Columbus, Ohio, and before…
Audit details cybersecurity concerns in Missouri schools
Dale Singer reports: Missouri school districts need to tighten controls over student data and other information to help ensure they do not fall into the wrong hands for the wrong purpose, a state audit said Thursday. Using information she gleaned earlier this year from audits on five districts, including Orchard Farm in St. Charles County, state Auditor…
So what kind of month was September for the healthcare sector?
Looking for some monthly stats on healthcare data breaches in the U.S.? See Protenus’s Breach Barometer for September, produced in conjunction with DataBreaches.net.
Contracting in the Cloud: Who Pays for a Data Breach?
In a recent white paper I co-authored with Protenus, Inc., we noted the significant risks of a breach involving a vendor or business associate. In following up in a subsequent post, I also included a “pop quiz” for readers to use to test their understanding about the terms of any contract they have in terms of…
InfoSec: FDA Needs to Rectify Control Weaknesses That Place Industry and Public Health Data at Risk
For years, Congress and federal regulators have been raising concerns about FDA’s infosecurity after report of a hack in 2013. So while the FDA has been issuing lots of statements about securing medical devices and mobile apps, the GAO would like them to know that they need to do a better job on securing their own data: What…